Threat Hunting in the Cloud: Defending Aws, Azure and Other Cloud Platforms Against Cyberattacks

Kudrati, Abbas, Peiris, Chris, Pillai, Binil

  • 出版商: Wiley
  • 出版日期: 2021-10-05
  • 定價: $1,800
  • 售價: 9.0$1,620
  • 語言: 英文
  • 頁數: 544
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 111980406X
  • ISBN-13: 9781119804062
  • 相關分類: Amazon Web ServicesMicrosoft Azure
  • 立即出貨 (庫存 < 3)

商品描述

Implement a vendor-neutral and multi-cloud cybersecurity and risk mitigation framework with advice from seasoned threat hunting pros

In Threat Hunting in the Cloud: Defending AWS, Azure and Other Cloud Platforms Against Cyberattacks, celebrated cybersecurity professionals and authors Chris Peiris, Binil Pillai, and Abbas Kudrati leverage their decades of experience building large scale cyber fusion centers to deliver the ideal threat hunting resource for both business and technical audiences. You'll find insightful analyses of cloud platform security tools and, using the industry leading MITRE ATT&CK framework, discussions of the most common threat vectors.

You'll discover how to build a side-by-side cybersecurity fusion center on both Microsoft Azure and Amazon Web Services and deliver a multi-cloud strategy for enterprise customers. And you will find out how to create a vendor-neutral environment with rapid disaster recovery capability for maximum risk mitigation.

With this book you'll learn:

  • Key business and technical drivers of cybersecurity threat hunting frameworks in today's technological environment
  • Metrics available to assess threat hunting effectiveness regardless of an organization's size
  • How threat hunting works with vendor-specific single cloud security offerings and on multi-cloud implementations
  • A detailed analysis of key threat vectors such as email phishing, ransomware and nation state attacks
  • Comprehensive AWS and Azure how to solutions through the lens of MITRE Threat Hunting Framework Tactics, Techniques and Procedures (TTPs)
  • Azure and AWS risk mitigation strategies to combat key TTPs such as privilege escalation, credential theft, lateral movement, defend against command & control systems, and prevent data exfiltration
  • Tools available on both the Azure and AWS cloud platforms which provide automated responses to attacks, and orchestrate preventative measures and recovery strategies
  • Many critical components for successful adoption of multi-cloud threat hunting framework such as Threat Hunting Maturity Model, Zero Trust Computing, Human Elements of Threat Hunting, Integration of Threat Hunting with Security Operation Centers (SOCs) and Cyber Fusion Centers
  • The Future of Threat Hunting with the advances in Artificial Intelligence, Machine Learning, Quantum Computing and the proliferation of IoT devices.

Perfect for technical executives (i.e., CTO, CISO), technical managers, architects, system admins and consultants with hands-on responsibility for cloud platforms, Threat Hunting in the Cloud is also an indispensable guide for business executives (i.e., CFO, COO CEO, board members) and managers who need to understand their organization's cybersecurity risk framework and mitigation strategy.

商品描述(中文翻譯)

在《在雲端中進行威脅狩獵:保護AWS、Azure和其他雲平台免受網絡攻擊》一書中,著名的網絡安全專家和作者Chris Peiris、Binil Pillai和Abbas Kudrati利用他們數十年在建立大型網絡融合中心方面的經驗,為商業和技術人員提供了理想的威脅狩獵資源。書中深入分析了雲平台安全工具,並使用行業領先的MITRE ATT&CK框架討論了最常見的威脅向量。

您將了解如何在Microsoft Azure和Amazon Web Services上建立並提供企業客戶的多雲策略,並創建一個供應商中立的環境,具有快速災難恢復能力,以實現最大的風險緩解。

本書將教您:

- 在當今技術環境中,威脅狩獵框架的關鍵業務和技術驅動因素
- 無論組織大小,可用於評估威脅狩獵效果的指標
- 威脅狩獵如何與供應商特定的單一雲安全方案和多雲實施相結合
- 對電子郵件釣魚、勒索軟體和國家級攻擊等關鍵威脅向量的詳細分析
- 通過MITRE威脅狩獵框架的策略、技術和程序(TTP)的視角,提供全面的AWS和Azure解決方案
- Azure和AWS的風險緩解策略,以對抗特權升級、憑證盜竊、橫向移動、防禦命令和控制系統,並防止數據外洩
- 在Azure和AWS雲平台上提供自動應對攻擊、協調預防措施和恢復策略的工具
- 成功採用多雲威脅狩獵框架的許多關鍵組件,例如威脅狩獵成熟度模型、零信任計算、威脅狩獵的人員要素、威脅狩獵與安全運營中心(SOC)和網絡融合中心的整合
- 威脅狩獵的未來,包括人工智能、機器學習、量子計算和物聯網設備的發展。

對於負責雲平台的技術高管(例如CTO、CISO)、技術經理、架構師、系統管理員和顧問來說,《在雲端中進行威脅狩獵》是一本必不可少的指南。同時,對於需要了解其組織的網絡安全風險框架和緩解策略的商業高管(例如CFO、COO、CEO和董事會成員)和經理來說,本書也是一本不可或缺的指南。

作者簡介

CHRIS PEIRIS, PhD, has advised Fortune 500 companies, Federal and State Governments, and Defense and Intelligence entities in the Americas, Asia, Japan, Europe, and Australia New Zealand. He has 25+ years of IT industry experience. He is the author of 10 published books and is a highly sought-after keynote speaker.

BINIL PILLAI is a Microsoft Global Security Compliance and Identity (SCI) Director for Strategy and Business Development focusing on the Small Medium Enterprise segment. He has 21+ years of experience in B2B cybersecurity, digital transformation, and management consulting. He is also a board advisor to several start-ups to help grow their businesses successfully.

ABBAS KUDRATI is a CISO and cybersecurity practitioner. He is currently Microsoft Asia's Lead Chief Cybersecurity Advisor for the Security Solution Area and serves as Executive Advisor to Deakin University, LaTrobe University, HITRUST ASIA, and EC Council ASIA.

作者簡介(中文翻譯)

CHRIS PEIRIS, PhD,曾為美洲、亞洲、日本、歐洲和澳洲紐西蘭的財富500強公司、聯邦和州政府以及國防和情報機構提供諮詢服務。他擁有25年以上的IT行業經驗,是10本已出版的書籍的作者,並且是備受追捧的主題演講嘉賓。

BINIL PILLAI是微軟全球安全合規和身份(SCI)策略與業務發展總監,專注於中小企業市場。他在B2B網絡安全、數字轉型和管理咨詢方面擁有21年以上的經驗。他還擔任多家初創企業的董事顧問,幫助它們成功發展業務。

ABBAS KUDRATI是一位CISO和網絡安全從業者。他目前擔任微軟亞洲安全解決方案區域的首席網絡安全顧問,並擔任迪肯大學、拉特羅布大學、HITRUST ASIA和EC Council ASIA的執行顧問。